-
Notifications
You must be signed in to change notification settings - Fork 5
Expand file tree
/
Copy path.gitleaks.toml
More file actions
40 lines (36 loc) · 1.22 KB
/
.gitleaks.toml
File metadata and controls
40 lines (36 loc) · 1.22 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
# Software Name: OUDS Flutter
# SPDX-FileCopyrightText: Copyright (c) Orange SA
# SPDX-License-Identifier: MIT
#
# Gitleaks configuration file for OUDS Flutter project.
# Reference: https://github.com/gitleaks/gitleaks#configuration
title = "OUDS Flutter Gitleaks Configuration"
[extend]
# Extend the default gitleaks configuration
useDefault = true
# ── Allowlist ────────────────────────────────────────────────
# Paths to exclude from scanning
[allowlist]
description = "Global allowlist"
paths = [
'''pubspec\.lock''',
'''\.dart_tool/''',
'''build/''',
'''\.gradle/''',
'''Pods/''',
'''DerivedData/''',
'''\.png$''',
'''\.svg$''',
'''\.ttf$''',
'''\.otf$''',
'''\.webp$''',
# Firebase config — contains API keys intended for client-side use (restricted by Firebase rules)
'''google-services\.json''',
'''GoogleService-Info\.plist''',
]
# AWS S3 CDN URLs in documentation comments are not secrets
regexes = [
'''X-Amz-Credential=AKIA[A-Z0-9]{16}''',
# This specific key appears in AWS CDN documentation URLs, not a real credential
'''AKIA3AVNYHQKW6TV54VB''',
]